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(54) Computer keyboard with integral encoded device reader 

(57) The present invention relates to a computer 
keyboard console (1) with an integral encoded device 
reader, which may for example be a barcode reader, a 12 
magnetic card reader or a "smart card" reader or any 
generally similar device for reading encoded data, for 
example a personal identification number (PIN) held on 
the device (3) which may be inserted into a slot (2) ^15 
defined by the console. The reader comprises an inter- 
face in communication with a dedicated microprocessor 
(17) configured to communicate with means (15,16) for | sram 

erasably storing or validating data such as security or 
user identity data, the keyboard matrix circuitry (14), 
and adapted to communicate with the host computer 
central processing unit (CPU) (12) via the standard key- 
board port connection, and/or via a separate serial con- 
nection or interface. Separate reader interfaces may be 
configured with the dedicated microprocessor to read a 
barcode device, a magnetic card device, or a smart card 
device. Means (20.21) are preferably provided to block 
the communication of said data, when entered via the 
encoded device reader and/or via user keystrokes on 
the keyboard, between the keyboard and the host CPU, 
and preferably to temporarily disable the host CPU - 
keyboard interconnection or interface until the validation 
procedure and/or erasure of said data is complete. 
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Description 

The present invention relates to a computer keyboard console with an integral encoded device reader, which may 
for example be a barcode reader, a magnetic card reader or a "smart card" reader or any generally similar device for 
5 reading encoded data, tor example a personal identification number (PIN) held on the device which may be inserted 
into the reader. 

Separate card reader devices including a smart card reader, for interconnection between a computer keyboard 
console and a personal computer (PC) have been described in the prior art, for example EP-A-0,486,363 (Thomson- 
CSF). This describes a smart card readMrite unit in a self-contained housing with connections to the computer key- 

10 board and a port on the computer. If specific instructions are entered at the keyboard, data may be read from the smart 
card and written to the smart card. Numerous devices have been described in the prior art relating to point of sale 
(POS) devices and automatic cash dispenser machines which may include a key pad and a credit, debit or cash card 
reader with a magnetic strip including encoded PIN data for communication to a remote computer. However, these are 
mentioned by way of background only and are not directly relevant to the present invention, which is concerned with a 

is keyboard for a personal computer (PC), network computer (NC), or Internet appliance. 

The keyboard console is the standard input device on all personal computers and network computers, and it is par- 
ticularly in a network environment where security of access by individual users becomes important, i.e. controlling 
access by certain authorised individuals and restricting access to certain software applications by authorised individu- 
als is an important issue. In order to conduct electronic commerce across a network of computers, such as the Internet, 

20 smart cards and similar devices are used for example to transfer "digital cash", to make a credit transfer, or to debit an 
individuals bank account, and these transactions will increasingly be conducted from a PC or NC with the aid of a card 
reader device. 

A security problem exists with many prior art arrangements in that once encoded data such as PIN data is read 
from the user's card, whether to initially "unlock" further functionality of the card or to validate data subsequently 
25 entered, the PIN details are communicated to a host computer or network server, with the possibility of interception, 
diversion or corruption. In certain cases, it my not be absolutely necessary to transmit the PIN details to the host in par- 
ticular for personal identification purposes and for unloading the card's functionality. 

It is an object of the present invention to provide a computer keyboard console with an integral card reader slot, 
preferably to one side thereof so that the user inserts a card device with encoded data directly into the keyboard. 
30 It is a further object to the present invention to improve the security aspects associated with the transfer of encoded 
data from the card device to the central processing unit (CPU) of a PC connected to the keyboard, or to a remote com- 
puter or network server. 

A further object of the present invention is to prevent the transfer of certain encoded data, including PIN data from 
being communicated to the computer or network, but rather to retain that data locally in the keyboard console device for 

35 security and access control applications initiated by normal input from the computer keyboard keys. 

According to the present invention there is provided a computer keyboard console including an integral encoded 
device reader such as a barcode device, a magnetic card device or a smart card device, adapted to be inserted into a 
slot defined by the console, wherein the reader comprises an interface configured with a dedicated microprocessor in 
communication with means for erasably storing or validating data such as security or user identity data, and with the 

40 keyboard matrix circuitry, and adapted to communicate with the host CPU via the standard keyboard port connection. 
Said means may be embodied as an erasable programmable read only memory (EPROM), a static random access 
memory (SRAM), and/or a state machine with no RAM or ROM. 

Advantageously, means are provided to block the communication of said data when entered via the encoded 
device reader and/or via keystrokes on the keyboard between the keyboard and the host CPU. Said blocking means 

45 may be provided to temporarily disable the host CPU - keyboard interconnection or interface until the validation and/or 
erasure of said data is complete. Preferably, when an intelligent encoded data device such as a smart card encoded 
with a user-defined password is read by the reader and a user is required to enter the password via the keyboard keys 
to unlock the smart card so that further encoded data may be read by the reader, indicator means on the keyboard is 
set, and password confirmation is sent directly to the smart card, thereby bypassing the host CPU. 

so Preferably, separate reader interfaces are configured with the dedicated microprocessor to read different encoded 
device media selected from a barcode device, a magnetic card device, or a smart card device. Suitably, a cover is pro- 
vided to cover the slot or slots associated with any redundant reader device not in use. 

Preferably, connection with the host CPU is via a universal serial bus interface. Alternatively, an additional serial 
connection is provided between the dedicated microprocessor and the host CPU. 

55 Preferred embodiments of a computer keyboard console device in accordance with the present invention will now 
be described with reference to the accompanying drawings in which: 

Figure 1 is a perspective view of a standard IBM PC compatible keyboard console including an integral smart card 
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reader device, 

Figure 2 is a block diagram indicating the general configuration of a first embodiment of the present invention 
including a magnetic card reader and/or a barcode reader, 

5 

Figure 3 is a block diagram showing the general configuration of a second embodiment of the present invention, 
including a smart card reader, 

Figure 4 is a block diagram showing the general configuration of a third embodiment of the present invention 
w including a smart card reader with additional security features, 

Figure 5 is a block diagram showing the general configuration of a fourth embodiment of the present invention 
including a smart card reader with additional security features, and 

15 Figure 6 is a block diagram showing the general configuration of a fifth embodiment of the present invention includ- 
ing a smart card reader with additional security features. 

Figure 1 shows a standard computer keyboard console 1 , but including at the top right corner a slot 2 associated 
with a smart card 3 reader device forming an integral part of the console. A magnetic card reader device may also be 

20 located within the keyboard console and located at the upper right hand side comprising a slot or at the top left hand 
side of the keyboard console (not shown) for a manual swipe type reader. A barcode reader socket is internal to the key- 
board, but the reader itself may be external, such as a barcode laser scanning device, or a slot may be provided for 
manual insertion printed barcode cards or other optoelectronic card devices if necessary. 

A first embodiment of the present invention includes the integration of a magnetic card reader interface 10 and a 

25 barcode reader 1 1 interface into a keyboard console and is shown in its general configuration in Figure 1 . Each device 
communicates to the host CPU 1 2 via the keyboard cable 1 3. The data from each device is converted intostandard key- 
board codes via the keyboard matrix 14. The integral reader device includes its own EPROM chip 15 and SRAM chip 
16 as well as a microprocessor chip 16. The keyboard matrix circuitry, which is standard and need not be described, 
communicates with the host CPU via the microprocessor and the standard keyboard connection cable 13. 

30 A second embodiment of the present invention is described generally with reference to Figure 3, which is a similar 
configuration to that described with reference to Figure 2, except that this is a specific configuration to integrate a key- 
board and a smart card reader interface 1 8. The keyboard communicates with the host CPU via the keyboard cable and 
functions as a normal keyboard. However, in this configuration the smart card reader communicates with the host CPU 
via a separate serial port cable 19. The smart card acceptor slot 2 is situated at the upper right hand side of the key- 

35 board, as shown in Figure 1 . 

A third embodiment is shown with reference to Figure 4, and is a specific integration of a keyboard and smart card 
reader, with additional security features. One of the main features is that when a user is required to enter a password 
or PIN, the PIN data never leaves the keyboard. When the user specifies a PIN entry mode (for example by hitting a 
special PIN entry key), the serial interface between the host CPU and the smart card interface is isolated by means of 

40 hardware. This is described further with reference to the embodiments shown in Figures 5 and 6. Thus, it is not possible 
for the host computer or network server to intercept the PIN data by any software means. Communication can be inter- 
rupted at one of two points 20,21, between the keyboard matrix/microprocessor link, and/or between the smart 
card/keyboard matrix link. 

The standard numeric key pad section 4 of the keyboard present in all IBM-compatible keyboards, for example, may 
45 be modified to incorporate functions for PIN data entry. One possibility is to remove all legends from the key pad except 
for the numerals, and replace the "NUM LOCK" key legend with TIN ENTRY" (see key 5, Figure 1) so that the key pad 
is dedicated to PIN entry. Another option is to assign an additional PIN entry function to the "NUM LOCK" key so that 
eachdepression of the key would cause the keyboard to cycle through separate functions, for example from NUM LOCK 
"on" to NUM LOCK "off" to PIN ENTRY to NUM LOCK "on". An indication that the keyboard is in PIN entry mode may 
so be provided either by a small display mounted on the keyboard, or a dedicated liquid crystal display (LCD) or light emit- 
ting diode (LED) 6 for that function. 

A fourth embodiment will now be described in more detail with reference to Figure 5. Firstly, connection to the host 
CPU is via a universal serial bus (USB) interface. 

The core security element is that the smart card is locked until a PIN number is validated. In developing the pro- 
55 posed architecture the underlying security principle is that the user, and not the application, controls the switch from 
"Keyboard Data Mode" to "PIN data mode". To follow this principle the following security criteria may be applied: 

- The application requests the user to enter PIN data entry mode. 
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- The user and only the user can initiate the actions required to enter PIN DATA entry mode. 

- The user is informed that the keyboard is in PIN data entry mode by means of a visible indicator or display on the 
keyboard. 

5 

In PIN data entry mode the keyboard interface to the PC is disabled. 

- In PIN data entry mode, the keyboard controller scans the switch matrix and passes keystroke data to the smart 
card via a IS07816 interface. 

10 

- A "SECURITY SUPERVISOR" State Machine (with no RAM or ROM) controls and monitors the data entry 

- On completion of PIN data entry the keyboard controller undergoes a "warm reset" and all PIN data is removed 
;:om themicrocontroller memory prior to re-establishing the USB link to the PC. 

15 

The following key entry data is supported by the SECURITY SUPERVISOR in PIN DATA ENTRY mode: 

Num. Lock [operator confirmation], 
0 to 9 numeric keys 
20 DEL [error correction] 
Enter key. 

The Security Supervisor implemented as a clock mode sequential circuit (in ASIC) is installed above the 'Normal 
keyboard functionality' controlling PIN DATA entry through the following steps: 

25 

A: From "the reset state", the PCE-procedure only starts after receiving input from the host via USB-channel. 
B: Start of PCE-procedure to be approved/confirmed by user. 

C: The switching of USB interface lines to Idle state condition for low speed communication devices after (B) and 
before re-initialisation of all RAM memory. 
30 D : Outputting via LED indicators / display of clear operator instructions. 
E: State table control as per following sequence: 

0: State table level 

1 : Reset state PCE-procedure request [after A] 
35 2: Secure mode confirmation [after B and C] 

3: First of 4 PIN-digit entry 

4: Second of 4 PIN-digit entry 

5: Third of 4 PIN-digit entry 

6: Fourth of 4 PIN-digit entry 
40 7: End of PCE-procedure [back to reset state] 

F: Warm reset output to the dedicated microprocessor (eg. 8x930x) after end of procedure. 
G: Switching back onto USB interface after completion of warm reset firmware module. 

45 A fifth embodiment will now be described in more detail with reference to Figure 6. 

When the device enters "PIN Entry Mode", a separate security module takes control of the switch matrix of the key- 
board, so that any key presses are not detected by the keyboard controller. Instead, the matrix scan lines are redirected 
to the security module, under the control of the security module. The same control at the same time switches the con- 
nection between the keyboard controller and the smart card, over to between the security module and the smart card. 

so All communications between the keyboard controller and the security module will be one-way, i.e. from the keyboard 
controller to the security module, determined by the hardware so that the PIN cannot be passed from the security mod- 
ule to the keyboard controller by a "trap door" or any other means. The security module is embodied as a separate ded- 
icated microprocessor. 
It should be noted that; 

55 

* A closed switch can be provided on the matrix so the USB controller knows when control of the matrix has been 
passed back to it from the security module. 
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* It is possible to add a simple circuit to let the USB microprocessor know when there has been a keypress in PIN 
Entry mode, without letting it know exactly which key has been pressed. 

The following represents a "state table" for the configuration shown in Figure 6. 
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Physical security is provided by means of a tamper proof label covering one of the keyboard assembly screws so 
40 that the user can identify if the keyboard itself has been interfered with. 

Additional applications in which a smart card may be used which contains personal data in encrypted form, may 
include the transmission of encryption keys, the transmission of personal data including medical record data, as well as 
access control to a network environment, simple boot control may be provided, for example to allow certain users in an 
office or home environment to boot up a PC, as well as banking and financial applications in electronic commerce, in 
45 particular Internet commerce. 

Claims 

1. A computer keyboard console (1) including an integral encoded device reader such as a barcode device reader 
so (1 1). a printed barcode card reader, a magnetic card device reader (10) or a smart card device reader (18), wherein 
the encoded device (3) is adapted to be inserted into a slot (2) defined by the console, characterized in that the 
reader comprises an interface adjacent said slot configured and in communication with a dedicated microprocessor 
(17) so as to read encoded data stored on said device, said dedicated microprocessor being configured and in 
communication with erasable data storage means (15.16) for locally storing, comparing and validating data such 
55 as security or user identity data read from said device, said dedicated microprocessor being configured and in com- 
munication with the keyboard matrix circuitry (14) for comparing keystroke input data with said stored data, said 
dedicated microprocessor also being configured and in communication with the host computer central processing 
unit (12) via the standard keyboard port connection (13). and/or via a separate serial connection (19) or interface. 
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2. A computer keyboard console according to claim 1, wherein said data storage means comprises an erasable pro- 
grammable read only memory (EPROM), a static random access memory (SRAM), and/or a state machine with no 
random access memory (RAM) or read only memory (ROM). 

5 3. A computer keyboard console according to claim 1 or claim 2, wherein, separate reader interfaces are configured 
with the dedicated microprocessor (17) to read different encoded device media inserted in the console selected 
from a barcode device, a printed barcode card, a magnetic card device, or a smart card device. 

4. A computer keyboard console according to any of claims 1 to 3, wherein means are provided to block the commu- 
10 nication of said security data, when entered via the encoded device reader and/or via keystrokes on the keyboard, 
between the keyboard and the host computer central processing unit (12), and preferably said blocking means may 
be provided to temporarily disable the host computer central processing unit - keyboard interconnection or interface 
until a validation procedure is complete. 

75 5. A computer keyboard console according to claim 4, wherein said blocking means comprises means (21) to inter- 
rupt communication between said encoded device reader interface and said dedicated microprocessor (17), or 
means (20) to interrupt communication between said encoded device reader interface and said keyboard matrix cir- 
cuitry (14). 

20 6. A computer keyboard console according to claim 4 or claim 5, including an allocated function key (5), the function 
of which is to signify the commencement of user keystrokes defining security data input. 

7. A computer keyboard console according to claim 4, wherein said blocking means comprises a security module, 
preferably comprising a separate microprocessor, adapted to temporarily take control of the keyboard matrix cir- 

25 cuitry (14) and at the same time switch over the connection between the keyboard matrix circuitry and the encoded 
device reader (18) to between the security module and the encoded device reader. 

8. A computer keyboard console according to any of claims 4 to 7, wherein means are provided to return control of 
normal keyboard function to the host computer central processing unit once all security data input to the keyboard 

30 console during a given validation procedure has been erased, preferably including a warm reset module. 

9. A computer keyboard console according to any of the preceding claims, wherein said dedicated microprocessor 
(17) is configured and in communication with the host computer central processing unit (12) via a universal serial 
bus connection. 

35 
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